Mulący się komputer

[fanatics]

Witam, generalnie nie ma widocznych problemów z tym, że bardzo często komputer chodzi bardzo wolno, zawiesza się.


OTL
http://wklej.org/id/381432/

EXTRAS
http://wklej.org/id/381430/


GMER
!! UWAGA - jest to niepełny log, gdyz program mi sie zawiesza...
http://wklej.org/id/381418/

[Andziorka]

W okienko OTL wklej poniższy skrypt i klik na Wykonaj skrypt:

:Processes
explorer.exe

:OTL
FF - prefs.js..browser.search.defaultenginename: "Yahoo"
FF - prefs.js..browser.search.order.1: "BearShare Web Search"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.0.0.5
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=966134&p="
O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Właściciel\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-725345543-1547161642-1606980848-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKU\S-1-5-21-725345543-1547161642-1606980848-1004..\Run: [SystemExplorer] File not found
O4 - HKU\.DEFAULT..\RunOnce: [] File not found
O4 - HKU\S-1-5-18..\RunOnce: [] File not found
O4 - HKU\S-1-5-19..\RunOnce: [] File not found
O4 - HKU\S-1-5-20..\RunOnce: [] File not found
O4 - HKU\S-1-5-21-725345543-1547161642-1606980848-1004..\RunOnce: [FlashPlayerUpdate] F:\Programy\Opera\program\plugins\NPSWF32_FlashUtil.exe File not found
O4 - Startup: C:\Documents and Settings\Właściciel\Menu Start\Programy\Autostart\SystemExplorerDisabled [2010-04-17 17:19:13 | 000,000,000 | -H-D | M]
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O33 - MountPoints2\{0301bd0c-a9d1-11dd-8f77-001e376725f9}\Shell\AutoRun\command - "" = I:\1sertc.exe -- File not found
O33 - MountPoints2\{0301bd0c-a9d1-11dd-8f77-001e376725f9}\Shell\explore\Command - "" = I:\1sertc.exe -- File not found
O33 - MountPoints2\{0301bd0c-a9d1-11dd-8f77-001e376725f9}\Shell\open\Command - "" = I:\1sertc.exe -- File not found
O33 - MountPoints2\{6e12b98e-17f3-11de-90e5-001e376725f9}\Shell - "" = AutoRun
O33 - MountPoints2\{6e12b98e-17f3-11de-90e5-001e376725f9}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -- File not found
O33 - MountPoints2\{7021b7eb-7bb4-11de-9235-001e376725f9}\Shell\AutoRun\command - "" = K:\1sertc.exe -- File not found
O33 - MountPoints2\{7021b7eb-7bb4-11de-9235-001e376725f9}\Shell\explore\Command - "" = K:\1sertc.exe -- File not found
O33 - MountPoints2\{7021b7eb-7bb4-11de-9235-001e376725f9}\Shell\open\Command - "" = K:\1sertc.exe -- File not found
O33 - MountPoints2\{9056622f-b766-11de-92fd-001cbf585560}\Shell\AutoRun\command - "" = I:\1sertc.exe -- File not found
O33 - MountPoints2\{9056622f-b766-11de-92fd-001cbf585560}\Shell\explore\Command - "" = I:\1sertc.exe -- File not found
O33 - MountPoints2\{9056622f-b766-11de-92fd-001cbf585560}\Shell\open\Command - "" = I:\1sertc.exe -- File not found
@Alternate Data Stream - 88 bytes -> C:\Program Files\Uninstall_CDS.exe:SummaryInformation

:Files
C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\nc3q1ecr.default\searchplugins\BearShareWebSearch.xml
C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml
C:\Program Files\DAEMON Tools Toolbar
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\Tasks\Low Battery Alarm Program.job

:REG
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]

:Commands
[emptytemp]
[start explorer]
[Reboot]

Wykonaj tym skan: http://www.programosy.pl/program,malwarebytes-anti-malware.html usuń co znajdzie i daj raport.

[fanatics]

ok, zrobione - nowe logi

OTL:
http://wklej.org/id/382706/

EXTRAS
http://wklej.org/id/382707/

[Andziorka]

W okienko OTL wklej poniższy skrypt i klik na Wykonaj skrypt:

:Processes
explorer.exe

:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=966134"
O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found.
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] F:\Programy\Opera\program\plugins\NPSWF32_FlashUtil.exe File not found
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} Reg Error: Value error. (Reg Error: Key error.)
O33 - MountPoints2\{6e12b98e-17f3-11de-90e5-001e376725f9}\Shell - "" = AutoRun
O33 - MountPoints2\{6e12b98e-17f3-11de-90e5-001e376725f9}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -- File not found
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\LaunchU3.exe -- File not found

:Files
C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\nc3q1ecr.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
C:\Documents and Settings\Właściciel\Dane aplikacji\Mozilla\Firefox\Profiles\nc3q1ecr.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}
C:\Documents and Settings\Właściciel\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Documents and Settings\Właściciel\Dane aplikacji\BearShareTb

:REG
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]

:Commands
[emptytemp]
[emptyflash]
[clearallrestorepoints]

A skan Malware wykonany? Znalazło coś?
Wykonaj optymalizację XP jeszcze: http://forum.programosy.pl/optymalizacja-windowsa-xp-vt89133.html